Items tagged with security
If you are going to download a program, it may be worth knowing whether you are getting it from the authentic source or a threat actor in between. Such is the case with a trojanized Super Mario game which has been mining cryptocurrency and stealing data while people casually played Super Mario Forever.
Exploiting...
Read more...
Escape From Tarkov is a hardcore first-person looter-shooter set in the fictional world of Tarkov. With semi-regular updates and changes, players are always looking for an edge to give them an advantage in combat, up to and including data mining the game for stats and other information. However, the developers...
Read more...
This week, Apple patched three vulnerabilities that could lead to Triangulation spyware making it to your device with a zero-interaction exploit delivered through an invisible iMessage. Thus, update your devices as soon as able to patch these vulnerabilities and remain safe from the threat actors exploiting...
Read more...
Earlier this week, ASUS pushed a firmware update for 19 of the company’s routers which fixed nine different CVEs and enhanced security across the board. While updating your routers, ASUS also recommends that owners disable services accessible from the WAN side, such as port forwarding, DDNS, VPN, DMZ, and port...
Read more...
With all the excitement around ChatGPT, it is no wonder that threat actors are taking advantage of the situation. Besides having those with malicious intentions steal your Facebook account, they might also be stealing your ChatGPT account credentials as well, following the discovery of over 100,000 compromised ChatGPT...
Read more...
With Reddit somewhat imploding on the cusp of going public, some are taking advantage of the situation. Ransomware gang BlackCat (ALPHV) has recently claimed a February attack against Reddit, claiming to have stolen 80GB of data from the social media company.
In early February of this year, hackers from the...
Read more...
We like to joke about percussive maintenance when we talk about tools and technology. A good swift hit with a hammer can fix a lot of issues, right? Well, one researcher out of New Zealand found it was possible to use a screwdriver to reset the BIOS password for a Lenovo laptop.
If you’ve ever run into an issue...
Read more...
Researchers from the Ben-Gurion University of the Negev published a paper this week outlining a new side-channel attack against cryptographic computations. The researchers were able to successfully recover cryptographic keys by simply recording power LEDs through commercial video cameras of varying types.
The...
Read more...
Gone are the days of having one password for all your accounts or simply writing down every password you have on paper. Now, password managers make everyone more secure and passwords easier to manage, hence the name. Enter Google Password Manager, a password manager built directly into Chrome so you can handle all...
Read more...
Deepfake technology, or AI-manipulated videos, photos, or audio clips, has been on the rise over the past few years. While this tech has great applications in places like the film industry, it can also be used for nefarious things like 'undressing' women from any photo they post online. Since deepfake tech has gotten...
Read more...
Heads up to anyone who's running Google's Chrome browser—and a lot of people are, going by its massive market share—there's another actively-exploited zero-day vulnerability compromising its security. That's a bit of a big deal when you consider there are billions of Chrome installs. Fortunately, Google has pushed out...
Read more...
Over the last year, Google has been trying to step up its security game regarding all things Gmail, from client-side email encryption to brand verification measures to help prevent phishing and spam. However, a security researcher discovered an issue with the latter, putting all Gmail users at risk just before the...
Read more...
It's really irritating when you set up a new system and it begins downloading and installing the motherboard vendor's software without your permission or prompting. This can happen with a lot of different motherboard vendors, but there are secure ways and insecure ways to go about it, and Gigabyte seems to have chosen...
Read more...
In a recent survey of modern smartphones, it was found that a large proportion of them offered face recognition technology (FRT) which was alarmingly weak. Devices from most major Android vendors like Honor, Motorola, Nokia, Oppo, Samsung, Vivo and Xiaomi used FRT which could be fooled by a simple printed photo of the...
Read more...
The United States' relationship with China, especially regarding technology, has been strenuous at best since at least when the U.S. declared several Chinese companies a threat to national security in 2012. This rhetoric has continued through today but has usually come from the side of the U.S. government. However...
Read more...
In the last couple of years, the ever-popular KeePass password manager has come up in a number of articles, such as when it was recently found that passwords could be stolen through the export functionality. Now, KeePass is back in the news with a vulnerability that could allow an attacker to retrieve the master...
Read more...
The Justice Department has issued a warrant for a hacker accused of participating in conspiracies to deploy three ransomware variants, and anyone who helps nab him could get a reward of up to $10 million. The alleged ransomware attacks were against law enforcement agencies in Washington D.C., New Jersey, and others...
Read more...
Beginning in December of this year, Google will start deleting accounts that have been inactive for two years, all in the name of privacy and data protection. Here are the details and some easy steps to keep your account(s) from being purged.
While Google services integrates data security measures against spam...
Read more...
Meta (Facebook) is introducing a new security feature to its WhatsApp chat service that allows users to lock messages behind an additional layer of security, even while the app is open. Meta designed this feature for situations where a phone might be used by multiple people (say taking photos at a party), and the...
Read more...
If there were a massive security flaw affecting all current Intel processors, you'd want to know about it, right? We'd like to know too, but unfortunately mum's the word from Intel on the reason for a recent microcode update for almost all of its processors going back to 2017.
The update came out on Friday, which...
Read more...
A WordPress plugin with over 2 million active installations left its users open to an alarming security flaw. The popular Advanced Custom Fields (ACF) plugin by WP Engine allows WordPress admins to add custom fields throughout their sites for an enhanced content management system experience. However, if left...
Read more...
Security researchers at Kaspersky are ringing the alarm bells on a trojan that's managed to infiltrate Google Play and infect well over half a million Android devices. Dubbed "Fleckpe," the malware strain has been active since last year and has been detected in eleven Android apps (so far). The good news is they've...
Read more...
